We provide IT Staff Augmentation Services!

Sap Security Analyst Resume

Dallas, TexaS

Summary

  • 14 years Administration experience including 12 years of experience in SAP Security and other major experience includes application programming.
  • Involved in 3 Implementations and 3 Upgrade projects (sap R/3 3.1H , 4.6C, 4.7 to ECC5 , ECC 6) involved in Blue printing till Post Go Live Support
  • Strong configuration and analysis experience in using Profile Generator in SAP Security and CUA User Security Profiles.
  • Experience in the design and maintenance of security for SAP “New Dimension” products such as CRM, PI and BIW.
  • Designed the Security for MM, SD, FI and HR modules. Access Problems - Worked on security related problems for MM, SD, FI, and HCM.
  • Designed security models for Business Objects solutions
  • Worked on SAP tool: GRC (VIRSA) 5.3- Access Enforcer(compliance User Provisioning), Compliance Calibrator (Risk Analysis & Remediation), Fire fighter(Superuser Privilege Management) and Risk Assessment Tool (RAT).
  • Worked on INTERNAL SYSTEMS, RISK MANAGEMENT PROCESS THAT IS PROPRIETARY TO Client. Provide Security & Controls Support for Downstream Business systems. Requires detailed, current understanding of Integrated Risk Management Process, System of Management Controls and Security & Controls Project Management Practices, and Audit Compliance to remediate the existing roles.
  • Expertise on ECC 6.0 Security, EP PORTAL, NETWEAVER7.0 AND SOLUTION MANAGER.
  • Experience in SAP SEM,SCM,SRM,HCM-MSS, ESS, E- Recruting,BI-IP and Portal Security
  • A motivated individual and a quick learner, committed to teamwork, multicultural experience.
  • Able to communicate clearly with clients, peers and managers.

Technical Skills

Languages: C, C++, COBOL, RPG, SQL, PL/SQL, ABAP/4 and JAVA.

Databases: Oracle 9i/8i, MS-SQL Server, SQL Server 7.0, MS Access.

GUI: Visual Basic 5.0/6.0, HP VEE, VB.NET and Developer 2000.

Web Tools: NET, ASP.NET, HTML, JavaScript, VB Script, Front Page.

Testing Tools: Win Runner, Test Director, and Load Runner.

Operating System : Windows 95/98/NT/2000/XP/7, UNIX and MS-DOS, IBX AIX V7.1 .

ERP: SAP R/3 (3.1 to 4.7), ECC 5.0 and ECC 6.0 and Netweaver 7.0

Tools: GRC 5.3 (VIRSA).

Others: MS Project., SAP BOBJ (Business Objects) and BW 7.0.

Professional Experience

Confidential

Role: Lead Consultant.

Dallas, Texas.

Responsible for Day to day support of the environment is provided to ensure all user ID’s and assigned profiles/roles are maintained according to separation of duties guidelines and corporate instructions. Technical support is provided to customers using problem determination/problem source identification skills. AS a SAP Security Administrator involved daily as an interface to customer. Recommended ideas for improvements to technical support tools, procedures, and processes should be readily forthcoming. Contribution to department attainment of organizational objectives and high customer satisfaction is required. Extensive knowledge based SAP Security Administration for environmental updates. Support based on contractual obligations supported SAP applications. Activities include created user ID authorization issues, obtaining & retaining approvals for accesses granted to user ID’s, maintained applications for the customer designed to automate authorization approval flow, created & maintained customer & support team profile/roles, scheduled and non-scheduled changes, provided the customer and support groups application health checks, as well as other quarterly application checks to ensure compliance to audit and corporate guidelines.

  • Created and modified SAP authorizations, roles, and profiles (ECC 6.0 CRM 7.0, SRM 7.0, SCM 7.0, EP 7.0 BI 7.0, BI-IP, FI, PI/XI and HCM through PFCG, RSSM, and RSECADMIN as well as other SAP security transactions
  • Worked with SAP GRC Access Control Risk Analysis and remediation (formerly Virsa Compliance collaborator) CC5.3 Access Enforcer (Compliant User Provisioning), Firefighter (Super User Privilege Mgmt.) Role Expert 5.3 (Enterprise Role Mgmt) applications in order to maintain a global segregation of duties (SOD) rule set across your multiple system landscape
  • Performed three level support including problem determination for all SAP security needs within Development, QA, and Production SAP clients..
  • Attended multiple customer meetings each week. Handled production support of sensitive material and there are often multiple changes/upgrades occurring simultaneously in critical production environments.
  • Developed and implemented improved policies and procedures, implementing Best Practices solutions for SAP Security change management controls, to support SOX compliance standards, requesting changes, testing and transporting SAP Security roles to production environment.
  • Design, test, implement and maintenance of Roles using PFCG as per global design of the roles.
  • Analyzed authorization related problems and proposing solutions (Using SU53, SU56, and ST01).
  • Application level security through Profile generator, Creation and Maintenance of Authorization Objects and Authorization.
  • Role, Transaction code, Authorization, User related queries using SUIM.
  • Handled release changes. Responsible for release activities like managing security changes and transports management and support during cutover , Go-live and hyper care.
  • Worked with SAP GRC Access Control Risk Analysis and remediation (formerly Virsa Compliance collaborator) CC5.3 Access Enforcer (Compliant User Provisioning), Firefighter (Super User Privilege Mgmt.) Role Expert 5.3 (Enterprise Role Mgmt) applications in order to maintain a global segregation of duties (SOD) rule set across your multiple system landscape

Confidential, MURRYSVILLE, PA

Role: SAP Security analyst

  • Responsible for all SAP Security (4.7 upgraded to ECC6) related issues for PHILIPS globally. This included all modules, FI, CO,CRM ,SRM,HR,MM,PP and BI. As the primary point of contact work would be delegated to the appropriate team members and coaching would be delivered in the effort to apply the solution.
  • Responsible for implementing SAP GRC/VIRSA VRAT Compliance Calibrator.
  • Responsible for the investigation of all transaction codes used in the system and the categorization of these transactions according to risk. This includes all SAP delivered transactions as well as the investigation of all customized transactions and programs.
  • Responsible for complete redesign of roles used by business to address risks and also to increase efficiency of business productivity...
  • Involved in gathering security requirements for SAP ECC6, R/3 4.7 and SAP NetWeaver 7.0.
  • Provided SAP Security Administration, Analysis, Support tasks for all SAP Systems and Landscapes which includes SAP ECC6, R/3 4.7, HR, and xRPM, BW, XRPM/cProjects/cFolders and Federated Portal.
  • Worked extensively from the Design through Implementation and Go-Live for the Projects Step Expansion, Cross Category and Non-discretionary Payments (NDP HR) Projects.
  • Worked in the design, Implementation through Integration for the Product Data Management (PDM) Project.
  • Coordinating and assisting the security team in all the R/3, BW and HR security related tasks and solely responsible for the SAP NetWeaver security.
  • Extensively Used Virsa for local transports in DEV systems and Emergency user/Role maintenance in the Production system.
  • Developed and documented role change management, testing, and assignment approval process.
  • Resulting in dramatic reduction of time and resources required for testing, while simultaneously providing a documented, SOX compliance, security role change management procedure.
  • Extensively interacted with the functional teams in the process of creation of Role Matrices for all the modules.
  • Created documentation to keep track of the role development from the design through Production to reduce tracking effort.
  • Define Users & Assign Roles to them according to their Job Descriptions.
  • Create, change, remove and copy roles.
  • Coordinating the security team with the QA approval procedure for the role revisions and also worked on creating/running the batch jobs for the SAP user password parameters using ZSS01 custom Tcode.
  • Extensive use of SU01, PFCG in ABAP system users, roles and profiles management.
  • Worked on J2EE UME /LDAP user mapping and management for Portal application.
  • Worked extensively in xRPM application, in setting up the authorizations, Administration, Write, Read, Create document, Create folder, Delete, None for objects user, user group, role .
  • Create roles via PFCG and generate Authorization Profiles.
  • Worked on the BW roles creation, adding/removal of queries, reports, BSP, Info types, Info cubes, and related authorization objects and query URL s.
  • Authorization object modification based on design.
  • Interacted with HR Consultants in creation/removal of structural authorizations and worked in role revisions as part of implementing HR Security.
  • Created roles and Users for the HR Non Discretionary Payments project deals with the score boards, payroll processing, Employee history, audit exception report, period adjustments and Bonus .
  • Troubleshoot security/authorization related problems using SU53, ST01 and SUIM
  • Modified Check Maintain flags in SU24 as needed.
  • Worked on Upgrading VIRSA to GRC 5.3 (Risk Analysis and Remediation(RAR), SuperUser Privilege Management (SPM) in R3 4.7 to ECC 6.0 Technical Upgrade Project.
  • Implemented company policies and procedures designed strategy to prevent the introduction of compliance violations. Communicate and enforce SAP Best Practices
  • Designed, build, implemented and support SAP security roles and profiles for each named user involved in the enterprise systems implementation for ECC (FI, MM, SD, LO), BI, CRM (sales, service, marketing), Solution Manager, GRC (CUP, RAR, SPM), and Bolt-On systems.
  • Worked on implementing SAP Security solutions for the following modules:- Core Financials, SAP Treasury, Project Systems and Investment Management. SAP CRM 4.0
  • SAP HR- ESS (Payroll and Travel Management)
  • BI 7.0 and Integrated Planning; BW 3.5
  • GRC AC 5.1,5.2( Access Enforcer, Compliance Calibrator, Fire Fighter and Role Expert)
  • GRC Security - GRC Compliance Calibrator (CC 5.3/5.2/5.1) - Risk Analysis and Remediation, Fire Fighter (FF 5.3/5.2/5.1) Superuser Privilege Management, Role Expert (Enterprise Role Management), Access Enforcer (AE 5.1/5) - Compliant User Provisioning.
  • GRC (SOX)/SOD related issues.
  • R/3 Security - Extensive Security knowledge in R3 Validated Environment R/3 Role-based authorization (PFCG) Role, Profile creation, modifications, SU24 Changes, User Administration, Authorization objects, User reconciliation (PFUD), eCATT Scripts.
  • Preventative, mitigating and compensation controls to ensure the appropriate level of protection and adherence to the goals of the overall SAP security strategy.
  • CRM Security - Set up CRM security for Marketing and Campaign Management, Business Partner Security, E-commerce (Internet Sales) and Product Security.
  • BI/BW Security - BI Info Areas , Info cubes, Queries, Info objects. Analysis authorizations. Restricted Analysis Authorizations (Using RSECADMIN Tool) at Characteristic Values, Attribute Values and Key Figure level. Extensively used new BI tools like Authorization Monitoring and Legal Audit. Defined Authorization-Relevant Characteristics and Attributes using InfoObject Maintenance (RSD1).
  • Portal Security - Designed, Developed, Testing and Implementation of Enterprise Portal User IDs, Roles, iViews.

Confidential, MINNEAPOLIS, MN

Role: Lead SAP Security Administrator/architecture.

Key Contributions:

  • Managed the security design of a brand new ECC 6.0 implementation. Analyzed system architecture & provided recommendations based on IT security policy. Planed &coordinated system related activities. Understanding of technical resource & source to obtain & validate solutions & designs. Communicated via voice &writing effectively to both business &technical
    resource. Worked as a team & take initiatives on activities & tasks. Provided IT security policy in an enterprise system operations & implemented environment
  • Created and modified SAP authorizations, roles, and profiles (ECC 6.0 CRM 5.0, SRM 5.0, SCM 5.0, EP 6.0 BI 7.0, BI-IP, FI, PI/XI and HCM through PFCG, RSSM, and RSECADMIN as well as other SAP security transactions.
  • Designed E- Recruting Roles by Using Role Maintenance transaction PFCG to generate profiles for your SAP E-Recruiting users.( E-Recruiting under Technical Settings User Administration Create Special Users).
  • Designed security models for Business Objects solutions, BO Universe and Report design and development experience with the entire BO suite of tools including Web Intelligence, Designer, Crystal and Xcelsius. Worked with Administrative tools including Central Management Console, Import Wizard, and Business Views Manager
  • Created Netweaver (7.0) Identity Management Roles (IDM)/Rules processes, Use Cases, Workflow and Data Flow documentation. Documentation of existing (“As-Is”) process in order to develop process improvements (“Future State”) through Identity Management.
  • Reviewed and adjusted validation processes (add transaction, unlock user, assign roles).
  • Cleaned and adapting the roles (Merging, Renaming and Testing all the new roles with the functional and key-users).
  • Day to day technical support and resolution of security issues on roles.
  • Resolved user’s daily problems (lock, unlock, reinitialize passwords, no access to a transaction)
  • User maintenance/User creation, deletion, modification on QAS, & DEV Server. All SAP systems (R/3, SOLMAN, BW, BOBJ,XI & EP).
  • Developed and maintained SAP authorization process design and related documentations in CRM 6.0, SRM 5.0, SCM 5.0, EP 6.0 BI 7.0, BI-IP, FI, PI/XI 7.0 and HCM.
  • Set up security for Enterprise Portal BI-IP, XI, CRM, SCM, SRM and HCM modules on NETWEAVER 2005, Solution Manager Systems and ERP 2005 System
  • HCM5.0, BI7.0, BI-IP, CRM5.0 SRM5.0 ECC6.0 XI7.0 Net weaver, Solution Manager… users through UME for NETWEAVER collaborated with other team members and business... and maintained user master records creating users through UME for Net weaver collaborated with other.
  • Communicated and translated SAP authorization requirements among business process owners.
    Successfully designed and implemented secure and compliant solutions for All SAP modules.
  • In BW security created roles based on the Info Cube and Info Provider level.
  • Investigated and resolved authorization-related issues in a timely manner, Utilizing system trace (ST01), authority check (SU53), debug mode to analyze and fix Problems Related to Security.
  • Maintained the Check Indicators and Activating and Deactivating the Authorization Objects
  • Experienced in building, modifying and supporting ECC, BW, Sol Man authorizations and roles in SD, MM, IM, WM, QM, FI, CO.
  • worked on INTERNAL SYSTEMS, RISK MANAGEMENT PROCESS THAT IS PROPRIETARY TO Client. Provide Security & Controls Support for Downstream Business systems. Requires detailed, current understanding of Integrated Risk Management Process, System of Management Controls and Security & Controls Project Management Practices, and Audit Compliance to remediate the existing roles.

Environment: SAP ECC 6.0, CUA, Net weaver 7.0, SOLMAN 4.0, BW 7.0, PI 7.0 GRC 5.3 & EP6.0.

Confidential, Canton, Ohio.

Role: SAP Basis Security Consultant.

Key Contributions:

  • Completely designed and implemented methodology for controlling end user access to plants, fund centers, cost centers. Applied to both R/3 and BW environments. Designed security solution for FI (AR, AP, SD, FA), CO, FM, MM, QM, PM, PS, PI/XI modules.
  • Reviewed and adjusted validation process (add transaction, unlock user, assign roles) and Resolved tickets raised by end users.
  • Cleaned and adapting the roles (Merging, Renaming and Testing all the new roles with the functional and key-users).
  • Day to day technical support and resolution of security issues on roles.
  • Resolved user’s daily problems (lock, unlock, reinitialize passwords, no access to a transaction) .
  • User maintenance/User creation, deletion, modification on QAS, & DEV Server. All SAP systems (R/3, SOLMAN, BW, XI & EP).
  • Transported between Development, Quality and Production systems of R/3 using STMS.
  • Installation and configuration of SAP 4.6C, 4.7EE, ECC 5.0, NW 2004s on Oracle 8i and Oracle 9i. And applied Support packs and Kernel Up gradation. Generated Solution manager key for the Landscape as required. Time based and event based Scheduling of background jobs and monitored them, Client Administration including client copy / export / import / delete
  • Short dump analyses, managed lock entries, lock/unlock transaction codes. Work process overview, background job administration and configured Printer, RFC and STMS.
  • Maintenance includes monitoring the servers, background jobs, system performance and to avoid bottlenecks.
  • Developed segregation of duties (SOD) matrix with cooperation of functional people.
  • Identified Security’s Key Role in Maintaining Sarbanes-Oxley Compliance.
  • Worked with SAP GRC Access Control Risk Analysis and remediation (formerly Virsa Compliance collaboration) CC5.3 in order to maintain a global segregation of duties (SOD) rule set across your multiple system landscape.
  • Created over 100 customized end user roles and menus, plus hundreds of "mini-roles" to allow for low-level modular access control.
  • Set up Central User Administration (CUA) to manage multiple systems/clients.
  • Set up security for Enterprise Portal on NetWeaver 2004, Solution Manager Systems and ERP 2005 System.
  • Sarbanes-Oxley and audit compliance issues to client. Led effort to obtain Security information and SAP Virsa 5.3 products for security management and risk analysis of Separation of Duties issues by using GRC (Virsa5.2) tools Access Enforcer (Compliant User Provisioning), Compliance Calibrator (Risk Analysis & Remediation), Firefighter (Super User Privilege Mgmt) Role Expert 5.2 (Enterprise Role Mgmt) applications.
  • Extensively worked on Service Centre Software like ITR and Applix.

Environment: SAP ECC 5.0, CUA, SOLMAN 4.0, BW 3.5, XI 3.0 & EP.

Confidential, Illinois

Role: SAP Security Consultant

Key Contributions

  • Designed Security for FI, SCM, HR and BW modules.
  • Built the Master and Simple Roles using transaction codes and implemented these Roles for client organizational levels.
  • Creating Derived Roles and authorization profiles for the various plants located at different geographical locations in Development system.
  • Upgraded roles from SAP 4.6C to ECC 5.0.
  • Assigning these roles to the Tester logins and monitor and solve the problems.
  • After Proper AUDIT the Security Roles Transport these Roles in to the QA Environment
  • Involve in Security Integration Testing and Rectify the problems and Updating the Roles
  • Worked on SAP third party tool: VIRSA Firefighter Assessment Tool (FAT) and Risk Assessment Tool (RAT); fine tuned VIRSA (VRAT) SOD Tcode matrix to include newly developed custom transactions, used VFAT to grant emergency access to transactions outside user’s usual domain to assist in debugging and troubleshooting problems.
  • In BW security created roles based on the Info Cube and Info Area level
  • Utilizing system trace (ST01), authority check (SU53), debug mode to analyze and fix Problems Related to Security
  • Maintaining the Check Indicators and Activating and Deactivating the Authorization Objects
  • Experienced in building, modifying and supporting ECC, BW, Sol Man authorizations and roles in SD, MM, IM, WM, QM, FI, CO.
  • Provided support for work book access hierarchies and node level access, Comprehensive knowledge exchange and documentation of security including Profile Generator, Day to day technical support and resolution of security issues
  • Maintenance of HR-Organizational structures, assignments (positions, roles)
  • Created User, Groups, generates authorization profiles. Created and Maintained Users.
  • Supported Internal and External security audits in the production system every 3 month

Environment: SAP 4.6c, SAP ECC 5.0.

Confidential, Des Plaines, Illinois

Role: SAP Security Admin

Key Contributions:

  • As a Security Administrator, studied the current security system, including new requirements, re-designing, defining and implementing task groups and Functional rolls for different Business Processes areas.
  • Set up Profile Generator, activity groups/authorizations/profiles.
  • Upgraded roles from SAP 4.0B to SAP 4.6C.
  • Upgraded roles from SAP 4.6C to SAP 4.70.
  • Redesigned SAP Security roles, identifying SOD’s and creating all new SAP Security Roles
  • Created Activity Groups and reviewed the existing Activity-Groups for better security controls. Taken necessary steps to secure the User Master Data.
  • Worked on Single Sign-On Solution for SAP Internet Transaction Server.
  • Configured the workplace and created roles in workplace and R/3 to support Employee Self Service implementation.
  • Lock user ids upon the direction of management or in certain other established situations. When a user departs, user management must notify the security team. The user id should be locked
  • Maintained the Security Audit logs and setting the Audit log Parameters.
  • Assisted the basis team in Going Live checks during the implementation of the APO and BW systems.
  • Created roles based on the Info Cube and Info Area level for BW security.
  • Used Audit Information System to perform the audit. Ran reports for critical transactions and objects.
  • Ran reports to check the change log passwords for users SAP* and DDIC. Checked the values for security parameters. Ran reports to see which users had never logged on since their creation date. Ran reports for segregation of duties conflict between roles and users. Created documentation for process and controls.
  • Written CATT scripts for creating, deleting mass user id s, creating and generating the roles.
  • Report Tree - Designed the area menu s for FI, PM, SD and MM and attached to the area menu. Added the reports to area menus and assigned the area menu to activity groups and transported to Testing and Production system.
  • Provided On-Call Support.

Environment: SAP 4.0B, SAP 4.6c, CRM 3.0, Windows 2000

Confidential, California

QA Analyst / Tester

Tested client application, developed to manage personal info rmation management system. System handled information regarding personal requirements, hiring processes, payroll details (including tax details), and insurance details.

Responsibilities: Prepared and executed test plans, edited and debugged test procedures to establish baseline. Interacted with coding team to report and correct errors. We performed manual testing for functional acceptance and system testing, checked GUI components and Bitmaps in baseline test, generated different TSL Scripts for functionally testing of applications, performed integration testing and regression testing, and also responsible for test documentation.

Environment: Oracle 7.3, Developer 2000, Windows NT, and WinRunner.

Confidential

QA Analyst/Tester

Confidential is a multi product, multi national manufacturing company and implemented SAP in sales and distribution, materials management and financials modules. With the addition of the Braun and Oral-B business units there is a need to develop, modify the existing system. Project work involves extensive analysis for effected interfaces, reports and functions.

Responsibilities: Identified modified and fully tested the interfaces, reports and search functions. Participated in preparing test plans, development of test objectives and test procedures. Carried out manual testing and manual reports, automated testing. Performed integrated testing, stress testing, and performance testing using Winrunner. Documented errors and implemented their resolutions.

Environment: SAP, Windows NT, UNIX, Winrunner.

Confidential

QA Tester

Project is to test Stock/Inventory Management System. It consisted of sales, purchasing and inventory transactions and reports. Sales module was designed to keep track of invoices, item inventory and customer status. Purchase module was designed to maintain items produced by the enterprise, inventory levels, purchase orders and parts inventory.

Responsibilities: Defined the specific steps, test cases, data requirements and recording options needed to incorporate into test. Tested the functionality of each screen and monitored the proper navigation of all customers. Involved in performance testing, regression testing and stress testing.

Environment: Oracle 7.3, Visual Basic 5.0, Windows NT and Winrunner

Confidential

Engineer

  • Wrote process sheets, work procedures.
  • Produced all necessary shop layouts for individual departments.
  • Prepared CNC programs for oxy-fuel, plasma cutting and turret punch machines.
  • Maintained records on inventory, loss material and quality control.
  • Job-costing each order per monthly basis.
  • Assisted production manager in scheduling jobs and troubleshooting.
  • Proposed cost reduction changes to manufacturing and conducted time studies of complicated manufacturing processes.

Hire Now